What to do with the gateway when implenting a HP5406zl switch with Vlan routing
Hi,
we've just bought a HP 5406zl witch we will use as a router between our internal networks.
At the moment we use a Juniper SRX firewall to do the routing (no policies exist internal)
I have a "simple" question ;-)
I know we can setup the HP5406zl as a router between the Vlans but do we have to change the gateway on the network where the firewall is placed to the HP5406zl or can we keep our firewall ipaddress as the gateway? (I suppose not, but I wan't to be sure)
The pc's are on the 10.0.0.0/22 network with 10.0.0.1 as gateway, the networks 10.0.5.0/24, 10.0.8.0/24 and 10.0.10.0/24, have all a gateway on the firewall (all on a separate interface).
So for the networks 10.0.5.0/24, 10.0.8.0/24 and 10.0.10.0/24 I can create a Vlan with the same ip as the actual gateway, I suppose I just add a route on those gateways to 10.0.0.1, (the firewall gateway to the internet) and if needed a ACL to block a some Vlan's to access some other if needed. But the 10.0.0.0/22 uses the firewall as the gateway 10.0.0.1 so what do I do with this gateway?
Do I create a Vlan with ip 10.0.0.2 and use that as the gateway on the pc's? And then add a route on the switch to go to the internet via 10.0.0.1?
I hope someone can help me on setting up this switch ;-)
we've just bought a HP 5406zl witch we will use as a router between our internal networks.
At the moment we use a Juniper SRX firewall to do the routing (no policies exist internal)
I have a "simple" question ;-)
I know we can setup the HP5406zl as a router between the Vlans but do we have to change the gateway on the network where the firewall is placed to the HP5406zl or can we keep our firewall ipaddress as the gateway? (I suppose not, but I wan't to be sure)
The pc's are on the 10.0.0.0/22 network with 10.0.0.1 as gateway, the networks 10.0.5.0/24, 10.0.8.0/24 and 10.0.10.0/24, have all a gateway on the firewall (all on a separate interface).
So for the networks 10.0.5.0/24, 10.0.8.0/24 and 10.0.10.0/24 I can create a Vlan with the same ip as the actual gateway, I suppose I just add a route on those gateways to 10.0.0.1, (the firewall gateway to the internet) and if needed a ACL to block a some Vlan's to access some other if needed. But the 10.0.0.0/22 uses the firewall as the gateway 10.0.0.1 so what do I do with this gateway?
Do I create a Vlan with ip 10.0.0.2 and use that as the gateway on the pc's? And then add a route on the switch to go to the internet via 10.0.0.1?
I hope someone can help me on setting up this switch ;-)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi,
tnx the migration didn't go totally smooth, but after eliminating some minor error it seems to work fine...
tnx the migration didn't go totally smooth, but after eliminating some minor error it seems to work fine...
ASKER
I always thought that the subnet of the ipaddresses where you want to forward to needed to be on one of the interfaces...